A system that prevents accomplishment of unauthorized communication between a terminal and a communication peer is provided. The system includes a measurement unit and a process execution unit. The measurement unit is arranged on at least one of the terminal or the communication peer to obtain a measured value corresponding to a distance between the terminal and the communication peer. The process execution unit determines whether the measured value is appropriate and controls actuation for authentication of the terminal through wireless communication performed between the terminal and the communication peer based on the determination result. The measurement unit executes a process for obtaining the measured value in a time period during which the communication for the authentication is not performed.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A system that prevents accomplishment of unauthorized communication between a terminal and a communication peer, the system comprising: a terminal controller arranged in the terminal; a verification electronic control unit (ECU) arranged in the communication peer, wherein the verification ECU exchanges a plurality of signals with the terminal controller through wireless communication to authenticate the terminal in accordance with an authentication communication sequence; a measurement unit implemented in at least one of the terminal controller or the verification ECU to obtain a measured value corresponding to a distance between the terminal and the communication peer based on a distance measuring radio wave propagated between the terminal and the communication peer; and a process execution unit implemented in at least one of the terminal controller or the verification ECU to determine whether the measured value is appropriate and to determine based on the determination result whether or not to continue the authentication communication sequence, wherein the distance measuring radio wave is propagated between the terminal and the communication peer in a non-communication period during which none of the plurality of signals is communicated in the authentication communication sequence, and the measurement unit executes a process for obtaining the measured value in the non-communication period of the authentication communication sequence.
This invention relates to a security system for preventing unauthorized communication between a terminal and a communication peer, such as a vehicle and a key fob. The system addresses the problem of relay attacks, where an attacker intercepts and relays signals between the terminal and the peer to bypass authentication. The system includes a terminal controller in the terminal and a verification electronic control unit (ECU) in the communication peer. These components exchange signals wirelessly to authenticate the terminal through a predefined authentication sequence. A measurement unit, located in either the terminal controller or the verification ECU, measures the distance between the terminal and the peer using radio waves propagated during non-communication periods of the authentication sequence. A process execution unit then evaluates whether the measured distance is appropriate and decides whether to continue the authentication process. By performing distance measurement during gaps in the authentication sequence, the system ensures that the terminal is physically close to the peer, preventing relay attacks. The invention enhances security by combining authentication with physical proximity verification.
2. The system according to claim 1 , wherein the authentication according to the authentication communication sequence includes challenge-response authentication that calculates a response code in each of the terminal controller and the verification ECU from a challenge code, which is a random number, and determines whether the response code calculated in the terminal controller matches the response code calculated in the verification ECU, and the process for obtaining the measured value is executed in a time period from when one of the terminal controller and the verification ECU receives the challenge code from the other of the terminal controller and the verification ECU to when the one of the terminal controller and the verification ECU transmits the response code to the other of the terminal controller and the verification ECU.
This invention relates to a secure communication system for vehicle diagnostics, addressing the need for authenticated data exchange between a terminal controller and an electronic control unit (ECU) in a vehicle. The system ensures secure transmission of measured values, such as diagnostic data, by implementing a challenge-response authentication protocol. During authentication, a challenge code, which is a random number, is exchanged between the terminal controller and the verification ECU. Both devices independently calculate a response code from the challenge code using a shared algorithm. The system verifies authentication by comparing the response codes generated by the terminal controller and the verification ECU. The process of obtaining and transmitting the measured value occurs within a specific time window: from when one device receives the challenge code from the other to when the response code is transmitted back. This ensures that the measured value is only obtained and transmitted during an authenticated session, preventing unauthorized access or tampering. The system enhances security in vehicle diagnostics by restricting data access to authenticated communication sessions.
3. The system according to claim 2 , wherein when the process execution unit detects unauthorized communication based on the measured value, the process execution unit controls the authentication communication sequence so that the one of the terminal controller and the verification ECU that received the challenge code is prohibited from transmitting the response code, thereby terminating the authentication communication sequence.
This invention relates to secure communication systems, specifically for preventing unauthorized access in vehicle networks. The system addresses the problem of unauthorized communication attempts between a terminal controller and a verification electronic control unit (ECU) during an authentication process. The system includes a process execution unit that monitors communication between these components and measures values related to the communication. If unauthorized communication is detected, the process execution unit intervenes by controlling the authentication sequence to prevent the transmission of a response code. This is achieved by blocking either the terminal controller or the verification ECU that received a challenge code from sending the corresponding response code, effectively terminating the authentication sequence. The system ensures that unauthorized access attempts are halted before they can compromise the network, enhancing security in vehicle communication systems. The process execution unit's ability to detect and respond to unauthorized communication in real-time is central to the invention's functionality.
4. The system according to claim 1 , wherein when the process execution unit detects unauthorized communication based on the measured value, the process execution unit controls the authentication communication sequence so that reception of a radio wave needed for performing the authentication is prohibited, thereby terminating the authentication communication sequence.
This invention relates to a secure authentication system for wireless communication, addressing the problem of unauthorized access during authentication processes. The system includes a process execution unit that monitors communication between a terminal and a server to detect unauthorized or malicious activity. When unauthorized communication is detected based on measured values, such as abnormal signal patterns or unauthorized data transmissions, the process execution unit intervenes to terminate the authentication sequence. Specifically, it prohibits the reception of radio waves necessary for authentication, effectively halting the communication and preventing unauthorized access. The system ensures that authentication cannot proceed if tampering or unauthorized actions are detected, enhancing security in wireless authentication protocols. The process execution unit may also include a communication control unit that manages the authentication sequence, ensuring that only legitimate communications are allowed to proceed. This approach mitigates risks associated with man-in-the-middle attacks, signal spoofing, or other forms of unauthorized interference during authentication. The invention is particularly useful in environments where secure wireless authentication is critical, such as financial transactions, access control systems, or sensitive data exchanges.
5. The system according to claim 1 , wherein when the terminal controller and the verification ECU are a legitimate pair, the measurement unit executes the process for obtaining the measured value.
The invention relates to a security system for verifying the legitimacy of communication between a terminal controller and a verification electronic control unit (ECU) in a vehicle or similar system. The problem addressed is ensuring secure and authenticated communication between these components to prevent unauthorized access or tampering. The system includes a terminal controller, a verification ECU, and a measurement unit. The terminal controller and verification ECU are configured to establish a secure communication link. The measurement unit is responsible for obtaining a measured value, such as a diagnostic or operational parameter, from the system. However, the measurement unit only executes this process when the terminal controller and verification ECU are confirmed to be a legitimate pair. This verification ensures that only authorized components can access sensitive data or perform critical operations. The system may use cryptographic techniques, such as digital signatures or shared keys, to authenticate the terminal controller and verification ECU. If the verification fails, the measurement unit does not proceed with obtaining the measured value, thereby maintaining system security. This approach prevents unauthorized devices from extracting or manipulating sensitive information, enhancing the overall security of the system. The invention is particularly useful in automotive or industrial applications where secure communication between control units is essential.
6. A method for preventing accomplishment of unauthorized communication between a terminal and a communication peer, the method comprising: obtaining, by a measurement unit implemented in at least one of a terminal controller arranged in the terminal or a verification electronic control unit (ECU) arranged in the communication peer, a measured value corresponding to a distance between the terminal and the communication peer based on a distance measuring radio wave propagated between the terminal and the communication peer; determining, by a process execution unit implemented in at least one of the terminal controller or the verification ECU, whether the measured value is appropriate to produce a determination result; and determining, by the process execution unit, based on the determination result whether or not to continue an authentication communication sequence, wherein the verification ECU exchanges a plurality of signals with the terminal controller through wireless communication to authenticate the terminal in accordance with the authentication communication sequence, wherein the distance measuring radio wave is propagated between the terminal and the communication peer in a non-communication period during which none of the plurality of signals is communicated in the authentication communication sequence, and wherein the measurement unit executes a process for obtaining the measured value in the non-communication period of the authentication communication sequence.
This invention relates to secure wireless communication systems, specifically preventing unauthorized communication between a terminal (e.g., a key fob) and a communication peer (e.g., a vehicle ECU) by verifying physical proximity. The problem addressed is the risk of relay attacks, where an attacker intercepts and relays signals between a legitimate terminal and a communication peer to bypass authentication. The method involves a measurement unit, implemented in either the terminal controller or the verification ECU, obtaining a measured value representing the distance between the terminal and the communication peer using a distance-measuring radio wave. This measurement occurs during a non-communication period in the authentication sequence, when no authentication signals are being exchanged. A process execution unit then evaluates whether the measured value is appropriate (e.g., within an expected range) and uses this determination to decide whether to continue the authentication process. If the distance is deemed inappropriate (e.g., too large), the authentication sequence is halted, preventing unauthorized access. The system ensures that authentication only proceeds when the terminal is physically close to the communication peer, mitigating relay attacks. The distance measurement is performed without interfering with the authentication signals, maintaining system efficiency.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
August 19, 2019
March 8, 2022
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.